Test ID:	1.3.6.1.4.1.25623.1.1.18.2.2025.0591.1
Category:	openSUSE Local Security Checks
Title:	openSUSE Security Advisory (SUSE-SU-2025:0591-1)
Summary:	The remote host is missing an update for the 'ucode-intel' package(s) announced via the SUSE-SU-2025:0591-1 advisory.
Description:	Summary: The remote host is missing an update for the 'ucode-intel' package(s) announced via the SUSE-SU-2025:0591-1 advisory. Vulnerability Insight: This update for ucode-intel fixes the following issues: - Intel CPU Microcode was updated to the 20250211 release (bsc#1237096) - CVE-2024-31068: Improper Finite State Machines (FSMs) in Hardware Logic for some Intel Processors may allow privileged user to potentially enable denial of service via local access. - CVE-2024-36293: A potential security vulnerability in some Intel Software Guard Extensions (Intel SGX) Platforms may allow denial of service. Intel is releasing microcode updates to mitigate this potential vulnerability. - CVE-2024-39355: A potential security vulnerability in some 13th and 14th Generation Intel Core Processors may allow denial of service. Intel is releasing microcode and UEFI reference code updates to mitigate this potential vulnerability. - CVE-2024-37020: A potential security vulnerability in the Intel Data Streaming Accelerator (Intel DSA) for some Intel Xeon Processors may allow denial of service. Intel is releasing software updates to mitigate this potential vulnerability. - New Platforms Processor Stepping F-M-S/PI Old Ver New Ver Products :---------------:---------:------------:---------:---------:--------- SRF-SP C0 06-af-03/01 03000330 Xeon 6700-Series Processors with E-Cores ### Updated Platforms Processor Stepping F-M-S/PI Old Ver New Ver Products :---------------:---------:------------:---------:---------:--------- ADL C0 06-97-02/07 00000037 00000038 Core Gen12 ADL H0 06-97-05/07 00000037 00000038 Core Gen12 ADL L0 06-9a-03/80 00000435 00000436 Core Gen12 ADL R0 06-9a-04/80 00000435 00000436 Core Gen12 ADL-N N0 06-be-00/19 0000001a 0000001c Core i3-N305/N300, N50/N97/N100/N200, Atom x7211E/x7213E/x7425E AZB A0/R0 06-9a-04/40 00000007 00000009 Intel(R) Atom(R) C1100 CFL-H R0 06-9e-0d/22 00000100 00000102 Core Gen9 Mobile CFL-H/S/E3 U0 06-9e-0a/22 000000f8 000000fa Core Gen8 Desktop, Mobile, Xeon E EMR-SP A0 06-cf-01/87 21000283 21000291 Xeon Scalable Gen5 EMR-SP A1 06-cf-02/87 21000283 21000291 Xeon Scalable Gen5 ICL-D B0 06-6c-01/10 010002b0 010002c0 Xeon D-17xx, D-27xx ICX-SP Dx/M1 06-6a-06/87 0d0003e7 0d0003f5 Xeon Scalable Gen3 RPL-E/HX/S B0 06-b7-01/32 0000012b 0000012c ... [Please see the references for more information on the vulnerabilities] Affected Software/OS: 'ucode-intel' package(s) on openSUSE Leap 15.6. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2024-31068 Common Vulnerability Exposure (CVE) ID: CVE-2024-36293 Common Vulnerability Exposure (CVE) ID: CVE-2024-37020 Common Vulnerability Exposure (CVE) ID: CVE-2024-39355
Copyright	Copyright (C) 2025 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.